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1 A resolution strategy for verifying cryptographic protocols with CBC encryption and 

blind signatures 
^ Veronique Cortier, Michael Rusinowitch, Eugen ZDIinescu 

July 2005 Proceedings of the 7th ACM SIGPLAN international conference on 

Principles and practice of declarative programming PPDP '05 
Publisher: ACM Press 

Full text available: ^pdf(214.71 KB) Additional Information: full citation , abstract , references , index terms 

Formal methods have proved to be very useful for analyzing cryptographic protocols. 
However, most existing techniques apply to the case of abstract encryption schemes and 
pairing. In this paper, we consider more complex, less studied cryptographic primitives 
like CBC encryption and blind signatures. This leads us to introduce a new fragment of 
Horn clauses. We show decidability of this fragment using a combination of several 
resolution strategies. As a consequence, we obtain a new decidability re ... 

Keywords: cryptographic protocols, horn clauses, resolution strategies, verification 


Agents, interactions, mobility and systems: Blinded-kev signatures: securing private 
keys embedded in mobile agents 
Lucas C. Ferreira, Ricardo Dahab 

March 2002 Proceedings of the 2002 ACM symposium on Applied computing 
Publisher: ACM Press 

Full text available: ^ pdf(442.06 KB) Additional Information: full citation , abstract , references , index terms 

We present a new cryptographic primitive, the blinded-key signature, which allows the 
inclusion of private keys in autonomous mobile agents. This novel approach can be 
applied to many well-known digital signature schemes, such as RSA and EIGammal. 

Keywords: cryptography, digital signatures, mobile agents, security 


3 Multi-agent systems and social behavior: Blind sales in electronic commerce 

E. ATmeur, G. Brassard, F. S. Mani Onana 
^ March 2004 Pr ceedings f the 6th internati nal c nference n Electr nic c mmerce 
ICEC '04 

Publisher: ACM Press 

Full text available: ^ pdf(330.05 KB) Additional Information: full citation , abstract , references 
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We start with the usual paradigm in electronic commerce: a consumer who wants to buy 
from a merchant. However, both parties wish to enjoy maximal privacy. In addition to 
remaining anonymous, the consumer wants to hide her browsing pattern and even the 
identification of the product she may decide to buy. Nevertheless, she wants to be able to 
negotiate the price, pay, receive the product and even enjoy maintenance on it. On the 
other hand, the merchant wants to leak as little information as possib ... 

Keywords: CAPTCHA, anonymous surfing, cryptography, customer buying behaviour, 
electronic commerce, oblivious transfer, private information retrieval 


4 Revokable and versatile electronic money (extended abstract) 
^ Markus Jakobsson, Moti Yung 

v January 1996 Proceedings of the 3rd ACM conference on Computer and 
communications security 
Publisher: ACM Press 

Full text available: f£| pdf(1.53 MB) Additional Information: full citation , references , citings , index terms 


5 Strength of two data encryption standard implementations under timing attacks 
J& Alejandro Hevia, Marcos Kiwi 

>^ November 1999 ACM Transactions on Information and System Security (TISSEC), 

Volume 2 Issue 4 

Publisher: ACM Press 

i- .. * + -i ui fiit , (H0070 ^ m Additional Information: full citation , abstract , references , citings , index 

Full text available: f%3 pdf( 183.73 KB) ; 

terms , review 

We study the vulnerability of two implementations of the Data Encryption Standard (DES) 
cryptosystem under a timing attack. A timing attack is a method, recently proposed by 
Paul Kocher, that is designed to break cryptographic systems. It exploits the engineering 
aspects involved in the implementation of cryptosystems and might succeed even against 
cryptosys-tems that remain impervious to sophisticated cryptanalytic techniques. A timing 
attack is, essentially, a way of obtaining some users ... 

Keywords: cryptanalysis, cryptography, data encryption standard, timing attack 


6 Secure key issuing in ID-based cryptography 

Byoungcheon Lee, Colin Boyd, Ed Dawson, Kwangjo Kim, Jeongmo Yang, Seungjae Yoo 
January 2004 Proceedings of the second workshop on Australasian information 

security, Data Mining and Web Intelligence, and Software 

Internationalisation - Volume 32 CRPIT '04 
Publisher: Australian Computer Society, Inc. 

Full text available: ^f |pdf(177.95 KB) Additional Information: full citation , abstract , references 

ID-based cryptosystems have many advantages over PKI based cryptosystems in key 
distribution, but they also have an inherent drawback of key escrow problem, i.e. users' 
private keys are known to the key generation center (KGC). Therefore secure key issuing 
(SKI) is an important issue in ID-based cryptography. In multiple authority approach 
(Boneh & Franklin 2001, Chen et al. 2002), key generation function is distributed to 
multiple authorities. Keeping key privacy using user-chosen secret inform ... 

Keyw rds: ID-based cryptography, bilinear pairing, blinding, key generation center 
(KGC), key privacy authority (KPA), secure key issuing (SKI) 
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A survey of key management for secure group communication 
Sandro Rafaeli, David Hutchison 

September 2003 ACM C mputing Surveys (CSUR), volume 35 issue 3 
Publisher: ACM Press 

i_ ... , . . ,sn , wo , c „ ,, D , Additional Information: full citation , abstract , references , citings , index 

Full text available: W j pdf(346.27 KB) - ' 

terms 

Group communication can benefit from IP multicast to achieve scalable exchange of 
messages. However, there is a challenge of effectively controlling access to the 
transmitted data. IP multicast by itself does not provide any mechanisms for preventing 
nongroup members to have access to the group communication. Although encryption can 
be used to protect messages exchanged among group members, distributing the 
cryptographic keys becomes an issue. Researchers have proposed several different 
approach ... 

Keywords: Group Key Distribution, Multicast Security 


8 On the performance of group key agreement protocols 
^ Yair Amir, Yongdae Kirn, Cristina Nita-Rotaru, GeneTsudik 

v August 2004 ACM Transactions on Information and System Security (TISSEC), volume 7 

Issue 3 

Publisher: ACM Press 

Full text available: ^ | pdf(469.07 KB) Additional Information: full citation , abstract , references , index terms 

Group key agreement is a fundamental building block for secure peer group 
communication systems. Several group key management techniques were proposed in 
the last decade, all assuming the existence of an underlying group communication 
infrastructure to provide reliable and ordered message delivery as well as group 
membership information. Despite analysis, implementation, and deployment of some of 
these techniques, the actual costs associated with group key management have been 
poorly understood ... 

Keywords: Group Communication, Group Key Management, Peer Groups, Secure 
Communication 


9 Simple and fault-tolerant key agreement for dynamic collaborative groups H 

Yongdae Kim, Adrian Perrig, Gene Tsudik 
>^ November 2000 Proceedings of the 7th ACM conference on Computer and 
communications security 

Publisher: ACM Press 

Full text available: i fj £| pdf(319.01 KB) Additional Information: full citation , references , citings , index terms 


10 Unlinkable serial transactions: protocols and applications 
Stuart G. Stubblebine, Paul F. Syverson, David M. Goldschlag 

November 1999 ACM Transactions on Information and System Security (TISSEC), 

Volume 2 Issue 4 

Publisher: ACM Press 

r- * ^ *■ ui m/aoa o7 i/ 0 \ Additional Information: full citation , abstract , references , citings , index 

Full text available: jS] pdf(184.87 KB) ' 

tiJ "^ terms , review 

We present a protocol for unlinkable serial transactions suitable for a variety of network- 
based subscription services. It is the first protocol to use cryptographic blinding to enable 
subscription services. The protocol prevents the service from tracking the behavior of its 
customers, while protecting the service vendor from abuse due to simultaneous or cloned 
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use by a single subscriber. Our basic protocol structure and recovery protocol are robust 
against failure in protocol termination. ... 

Keyw rds: anoymity, blinding, cryptographic protocols, unlinkable serial transactions 


11 Practical multi-candidate election system 

Olivier Baudron, Pierre-Alain Fouque, David Pointcheval, Jacques Stern, Guillaume Poupard 
August 2001 Proceedings of the twentieth annual ACM symposium on Principles of 

distributed computing 
Publisher: ACM Press 

p» i ■ . . I ui -ir/ono im *sn\ Additional Information: full citation , abstract , references , citings , index 

Full text available: t%1 pdf(898.50 KB) ' ' ' 

terms 

The aim of electronic voting schemes is to provide a set of protocols that allow voters to 
cast ballots while a group of authorities collect the votes and output the final tally. In this 
paper we describe a practical multi-candidate election scheme that guarantees privacy of 
voters, public verifiability, and robustness against a coalition of malicious authorities. 
Furthermore, we address the problem of receipt-freeness and incoercibility of voters. Our 
new scheme is based on the Paillier cryp ... 

12 Tree-based group key agreement 
^ Yongdae Kim, Adrian Perrig, Gene Tsudik 

^ February 2004 ACM Transactions on Information and System Security (TISSEC), volume 

7 Issue 1 
Publisher: ACM Press 

Full text available- ^pdf(573.70 KB) AdditionaI Information: full citation , abstract, references , cjtings, index 
ks ^~^ terms 

Secure and reliable group communication is an active area of research. Its popularity is 
fueled by the growing importance of group-oriented and collaborative applications. The 
central research challenge is secure and efficient group key management. While 
centralized methods are often appropriate for key distribution in large multicast-style 
groups, many collaborative group settings require distributed key agreement techniques. 
This work investigates a novel group key agreement approach which ble ... 

Keywords: communication complexity, cryptographic protocols, group communication, 
group key agreement, security 


13 Physical privacy: Privacy management for portable recording devices 
J. Alex Halderman, Brent Waters, Edward W. Felten 

October 2004 Proceedings of the 2004 ACM workshop on Privacy in the electronic 

society 
Publisher: ACM Press 

Full text available: ^ | pdf(321.69 KB) Additional Information: full citation , abstract , references , index terms 

The growing popularity of inexpensive, portable recording devices, such as cellular phone 
cameras and compact digital audio recorders, presents a significant new threat to privacy. 
We propose a set of technologies that can be integrated into recording devices to provide 
stronger, more accurately targeted privacy protections than other legal and technical 
measures now under consideration. Our design is based on an informed consent principle, 
which it supports by the use of novel devices and pr ... 

Keyw rds: camera phones, privacy, recording devices 
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Short papers: Specify in g electronic voting protocols in typed MSR 
«r Theodoros Balopoulos, Stefanos Gritzalis, Sokratis K. Katsikas 

November 2005 Pr ceedings f the 2005 ACM w rkshop n Privacy in the electr nic 

s ciety WPES '05 
Publisher: ACM Press 

Full text available: ^ pdf(141.00 KB) Additional Information: full citation , abstract , references , index terms 

Electronic voting, as well as other privacy-preserving protocols, use special cryptographic 
primitives and techniques that are not widely used in other types of protocols, e.g. in 
authentication protocols. These include blind signatures, commitments, zero-knowledge 
proofs, mixes and homomorphic encryption. Furthermore, typical formalizations of the 
Dolev-Yao intruder's capabilities do not take into account these primitives and techniques, 
nor do they consider some types of attacks that e-voting ... 

Keywords: Dolev-Yao intruder, electronic voting, privacy, security protocols, 
specification, typed MSR 


15 A secure and private system for subscription-based remote services 
Pino Persiano, Ivan Visconti 

November 2003 ACM Transactions on Information and System Security (TISSEC), 

Volume 6 Issue 4 

Publisher: ACM Press 

Full text available: ^ pdf(241.65 KB) Additional Information: full citation , abstract , references , index terms 

In this paper we study privacy issues regarding the use of the SSL/TLS protocol and 
X.509 certificates. Our main attention is placed on subscription-based remote services 
(e.g., subscription to newspapers and databases) where the service manager charges a 
flat fee for a period of time independent of the actual number of times the service is 
requested. We start by pointing out that restricting the access to such services by using 
X.509 certificates and the SSL/TLS protocol, while preserving the in ... 

Keywords: Access control, anonymity, cryptographic algorithms and protocols, privacy, 
world-wide web 


16 Strong loss tolerance of electronic coin systems 
4% Birgit Pfitzmann, Michael Waidner 

^ May 1997 ACM Transactions on Computer Systems (TOCS), volume is issue 2 
Publisher: ACM Press 

Additional Information: full citation , abstract , references , citings , index 


Full text available: TO pdf(267.29 KB) 

LJ_ ^ terms , review 

Untraceable electronic cash means prepaid digital payment systems, usually with offline 
payments, that protect user privacy. Such systems have recently been given considerable 
attention by both theory and development projects. However, in most current schemes, 
loss of a user device containing electronic cash implies a loss of money, just as with real 
cash. In comparison with credit schemes, this is considered a serious shortcoming. This 
article shows how untraceable electronic cash can be m ... 

Keywords: Byzantine faults, electronic cash, payment systems, privacy 


17 Ad hoc networks: On the security of group communication schemes based on 
^ symmetric kev crvptosvstems 
^ Shouhuai Xu 

November 2005 Pr ceedings f the 3rd ACM w rksh p on Security f ad h c and 
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sens r netw rks SASN '05 
Publisher: ACM Press 

Full text available: 1 ^ pdf(259. 19 KB) Additional Information: full citation , abstract , references , index terms 

Many emerging applications in both wired and wireless networks, such as information 
dissemination and distributed collaboration in an adversarial environment, need support 
of secure group communications. There have been many such schemes in the setting of 
wired networks. These schemes can be directly adopted in, or appropriately adapted to, 
the setting of wireless networks such as mobile ad hoc networks (MANETs) and sensor 
networks. In this paper we show that the popular group communication sche ... 

Keywords: backward-security, broadcast encryption, forward -security, group 
communication, key management, security 


18 The Q key management service 

Michael K. Reiter, Matthew K. Franklin, John B. Lacy, Rebecca N. Wright 
^ January 1996 Proceedings of the 3rd ACM conference on Computer and 
communications security 

Publisher: ACM Press 

Full text available; ||] pdf(1.37 MB) Additional Information: full citation , references , citings , index terms 


19 The design and implementation of a private message service for mobile computers §|§ 
David A. Cooper, Kenneth P. Birman 
August 1995 Wireless Networks, volume l issue 3 
Publisher: Kluwer Academic Publishers 

Full text available: , g| pdf(!35 MB) Additional Information: full citation , abstract , references 

Even as wireless networks create the potential for access to information from mobile 
platforms, they pose a problem for privacy. In order to retrieve messages, users must 
periodically poll the network. The information that the user must give to the network 
could potentially be used to track that user. However, the movements of the user can also 
be used to hide the user's location if the protocols for sending and retrieving messages 
are carefully designed. We have developed a replicated memo ... 


20 A secure marketplace for mobile Java agents 
e% Kay Neuenhofen, Matthew Thompson 

^ May 1998 Proceedings of the second international conference on Autonomous 
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